[Subject Prev][Subject Next][Thread Prev][Thread Next][Subject Index][Thread Index]

(fwd) [SECURITY] glibc update for Debian GNU/Linux 2.1

To: linux-delhi@xxxxxxxxxxxxxxxxxxxxx, linux-india-help@xxxxxxxxxxxxxxxxxxxxx
Subject: (fwd) [SECURITY] glibc update for Debian GNU/Linux 2.1
From: Raju Mathur <raju@xxxxxxxxxxxxxxx>
Date: Tue, 5 Sep 2000 10:54:30 +0530 (IST)
Reply-to: raju@xxxxxxxxxxxxxxx

[Please upgrade glibc -- Raju]

This is an RFC 1153 digest.
(1 message)
----------------------------------------------------------------------

Approved-By: aleph1@xxxxxxxxxxxxxxxxx
Delivered-To: bugtraq@xxxxxxxxxxxxxxxxxxxxxxx
Received: from securityfocus.com (mail.securityfocus.com [207.126.127.78]) by
          lists.securityfocus.com (Postfix) with SMTP id 2486A1EF3F for
          <bugtraq@xxxxxxxxxxxxxxxxxxxxxxx>; Mon,  4 Sep 2000 17:01:53 -0700
          (PDT)
Received: (qmail 13062 invoked by alias); 5 Sep 2000 00:03:14 -0000
Delivered-To: bugtraq@xxxxxxxxxxxxxxxxx
Received: (qmail 13059 invoked from network); 5 Sep 2000 00:03:13 -0000
Received: from murphy.debian.org (216.234.231.6) by mail.securityfocus.com with
          SMTP; 5 Sep 2000 00:03:13 -0000
Received: (qmail 11938 invoked by uid 38); 4 Sep 2000 23:59:35 -0000
X-Envelope-Sender: wichert@xxxxxxx
Received: (qmail 11898 invoked from network); 4 Sep 2000 23:59:33 -0000
Received: from soil08.soil.nl (HELO cloud.wiggy.net) (root@xxxxxxxxxxxxxx) by
          murphy.debian.org with SMTP; 4 Sep 2000 23:59:33 -0000
Received: (from wichert@localhost) by cloud.wiggy.net (8.9.3/8.9.3/Debian
          8.9.3-21) id BAA07743 for debian-security-announce@xxxxxxxxxxxxxxxx;
          Tue, 5 Sep 2000 01:59:32 +0200
X-Debian: PGP check passed for security officers
Priority: urgent
X-Mailing-List: <debian-security-announce@xxxxxxxxxxxxxxxx> archive/latest/119
X-Loop: debian-security-announce@xxxxxxxxxxxxxxxx
Precedence: list
Message-ID:  <S2amRD.A.b6C.ndDt5@murphy>
Reply-To: security@xxxxxxxxxx
Comments:     Resent-From: debian-security-announce@xxxxxxxxxxxxxxxx
Comments:     Originally-From: Wichert Akkerman <wichert@xxxxxxx>
From: debian-security-announce@xxxxxxxxxxxxxxxx
Sender: Bugtraq List <BUGTRAQ@xxxxxxxxxxxxxxxxx>
To: BUGTRAQ@xxxxxxxxxxxxxxxxx
Subject:      [SECURITY] glibc update for Debian GNU/Linux 2.1
Date:         Mon, 4 Sep 2000 17:01:53 -0700

-----BEGIN PGP SIGNED MESSAGE-----

- ------------------------------------------------------------------------
Debian Security Advisory                             security@xxxxxxxxxx
http://www.debian.org/security/                         Wichert Akkerman
September  5, 2000
- ------------------------------------------------------------------------


Package: glibc
Vulnerability: local exploit
Debian-specific: no

Recently two problems have been found in the glibc suite, which could be
used to trick setuid applications to run arbitrary code.

An earlier advisory listed the updates for Debian 2.2/potato. This
advisory contains updates for Debian 2.1/slink. For information
about the found problems please see the previous advisory which is
available online at http://www.debian.org/security/2000/20000902 .

wget url
	will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

Debian GNU/Linux 2.1 alias slink
- ------------------------------------

  Fixed packages are available for the Intel ia32 architecture.

  Source archives:
    http://security.debian.org/dists/slink/updates/source/glibc_2.0.7.19981211-6.2.diff.gz
      MD5 checksum: 4244c7f623db187881322b0949cc483a
    http://security.debian.org/dists/slink/updates/source/glibc_2.0.7.19981211-6.2.dsc
      MD5 checksum: 37eb9dc5ecd875e417aaba9ca6e1c25f
    http://security.debian.org/dists/slink/updates/source/glibc_2.0.7.19981211.orig.tar.gz
      MD5 checksum: 91724410e14a2b2b719dc44cf95067f1

  Intel ia32 architecture:
    http://security.debian.org/dists/slink/updates/binary-i386/libc6-dbg_2.0.7.19981211-6.2_i386.deb
      MD5 checksum: 23f5aace9db7104163b2422d600d8869
    http://security.debian.org/dists/slink/updates/binary-i386/libc6-dev_2.0.7.19981211-6.2_i386.deb
      MD5 checksum: 97deb2bb3eb914174a9bfecf3c3b5f69
    http://security.debian.org/dists/slink/updates/binary-i386/libc6-pic_2.0.7.19981211-6.2_i386.deb
      MD5 checksum: ca1f18e5d61c4d5f268bc377e06e8cf5
    http://security.debian.org/dists/slink/updates/binary-i386/libc6_2.0.7.19981211-6.2_i386.deb
      MD5 checksum: 13413f07247f28c2e8b35c1d2c4c9804
    http://security.debian.org/dists/slink/updates/binary-i386/locales_2.0.7.19981211-6.2_i386.deb
      MD5 checksum: 1b9d14ad72186ab2a6e9a30990b0ed75
    http://security.debian.org/dists/slink/updates/binary-i386/timezones_2.0.7.19981211-6.2_i386.deb
      MD5 checksum: c88a5c0ff9d429c0afa280b2dd244b45

- --
- ----------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
dpkg-ftp:ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@xxxxxxxxxxxxxxxx

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv

iQB1AwUBObQ3M6jZR/ntlUftAQFzRAL7BvCZbNga5mxrBeXq1aZy6iAweIh3ZWc6
BZQ2qHO/azy3Yfi2nfR4S/ND+rvlEfHlGIJRJeE/GhKzinU5t2ybgtl+TyPIy46b
ighG08+q0fI6PE4ek74rr1n/ND4hdEww
=U7oK
-----END PGP SIGNATURE-----


--
To UNSUBSCRIBE, email to debian-security-announce-request@xxxxxxxxxxxxxxxx
with a subject of "unsubscribe". Trouble? Contact listmaster@xxxxxxxxxxxxxxxx

------------------------------

End of this Digest
******************

Prev by Subject: (fwd) [RHSA-2000:061-02] syslog format vulnerability in klogd
Next by Subject: (fwd) [SECURITY] New version of glibc released
Previous by thread: Can your Linux Users Group help?
Next by thread: Hindi Gnome
Index(es):
- Subject
- Thread